Skip to content

Home  |   FAQ  |   Contact  |   Privacy & Use

customize
Current Activity Calendar
Left Arrow
January 2008
 Right Arrow
Su M Tu W Th F Sa
    1 2 3 4 5
6 7 8 9 10 11 12
13 14 15 16 17 18 19
20 21 22 23 24 25 26
27 28 29 30 31
Please click on a date above to see current activity for that day.

  • Latest Current Activity
    •

    January 17, 2008 - Current Activity

    This is an archived copy of current activity, if you would like to see the most recent version, please click here.

    January 17Adobe Releases Security Bulletins to Address Multiple Cross-Site Scripting Vulnerabilities
    January 17Oracle Releases Critical Patch Update for January 2008
    January 17Cisco Releases Security Advisory to Address Vulnerability in Cisco Unified Communication Manager
    January 16Apple Releases Security Updates to Address Multiple Vulnerabilities
    January 16Microsoft Office Excel Remote Code Vulnerability
    January 16New Storm Worm Variant Spreads
    January 15Fraudulent Mac OS Security Tool Circulating


    Adobe Releases Security Bulletins to Address Multiple Cross-Site Scripting Vulnerabilities

    added January 17, 2008 at 02:35 pm

    Adobe has issued Security Bulletin APSB08-01 and Security Bulletin APSB08-02 to address multiple vulnerabilities in Adobe Dreamweaver, Adobe Contribute, and Adobe Connect Enterprise Server. These software packages may contain cross-site scripting vulnerabilities that could allow a remote, unauthenticated attacker to execute arbitrary code on an affected system.

    US-CERT encourages users to review Security Bulletin APSB08-01 for the Adobe Dreamweaver and Adobe Contribute updates and Security Bulletin APSB08-02 for the Adobe Connect Enterprise Server update. Users are also encouraged to apply the appropriate updates as soon as possible.

    US-CERT will continue to investigate and provide additional information as it becomes available.


    Oracle Releases Critical Patch Update for January 2008

    added January 16, 2008 at 02:18 pm | updated January 17, 2008 at 02:35 pm

    Oracle has released their Critical Patch Update (CPU) for January 2008 to address 26 vulnerabilities across several products. This CPU contains eight security fixes for Oracle Database products; six for Oracle Application Server; one for Oracle Collaboration Suite; seven for Oracle E-Business Suite; and four for Oracle PeopleSoft Enterprise PeopleTools.

    US-CERT strongly encourages users to review the January CPU and follow best-practice security policies to determine which updates to apply.

    More information regarding these vulnerabilities can be found in Technical Cyber Security Alert TA08-017A.


    Cisco Releases Security Advisory to Address Vulnerability in Cisco Unified Communication Manager

    added January 17, 2008 at 10:45 am

    Cisco has released Security Advisory cisco-sa-20080116-cucmctl to address a heap overflow in the Certificate Trust List (CTL) Provider service in Cisco Unified Communications Manager (CUCM). This vulnerability may allow a remote, unauthenticated attacker to execute arbitrary code or cause a denial of service condition on an affected system.

    More information regarding this vulnerability can be found in the Cisco Security Advisory: Cisco Unified Communications Manager CTL Provider Heap Overflow.

    US-CERT strongly recommends that administrators review the Cisco Security Advisory above and follow best-practice security policies to determine what updates or workarounds should be applied.


    Apple Releases Security Updates to Address Multiple Vulnerabilities

    added January 16, 2008 at 02:18 pm | updated January 16, 2008 at 03:56 pm

    Apple has released QuickTime 7.4, iPhone v1.1.3, and iPod touch v1.1.3 to address multiple vulnerabilities in these products. The impacts of these vulnerabilities include arbitrary code execution, application termination, authentication bypass, and cross-site scripting.

    US-CERT encourages users to review Apple Article 307301 for the QuickTime update and Apple Article 307302 for the iPhone and iPod touch updates. Users are also encouraged to apply the appropriate updates as soon as possible.

    More information regarding the QuickTime vulnerabilies can be found in Technical Cyber Security Alert TA08-016A.

    US-CERT will continue to investigate and provide additional information as it becomes available.


    Microsoft Office Excel Remote Code Vulnerability

    added January 16, 2008 at 07:48 am | updated January 16, 2008 at 03:41 pm

    Microsoft has released Security Advisory 947563 to address a vulnerability in Excel. Successful exploitation could allow a remote, unauthenticated attacker to execute arbitrary code with the privileges of the local user.

    According to Security Advisory 947563:

    • This vulnerability cannot be exploited on Microsoft Office Excel 2003 Service Pack 3, Microsoft Office Excel 2007, Microsoft Office Excel 2007 Service Pack 1, or Microsoft Excel 2008 for Mac.
    • This vulnerability does not affect customers who are running Microsoft Office Excel 2003 Service Pack 2 and have deployed Microsoft Office Isolated Conversion Environment (MOICE).
    Until a fix becomes available, US-CERT recommends the following actions to help mitigate the security risks:
    • Do not open unfamiliar or unexpected email attachments
    • Review the workarounds described in Microsoft Security Advisory 947563
    US-CERT will provide more information as it becomes available.


    New Storm Worm Variant Spreads

    added January 16, 2008 at 02:18 pm

    US-CERT has received reports of new Storm Worm activity circulating. The emails contain romantic or Valentine's Day greetings and provide links for users to click on. The links are in the form of actual IP addresses, such as http:/x.x.x.x, although actual domain names may also be used. If a user clicks on the link provided, they will be directed to a malicious website that will attempt to exploit a variety of vulnerabilities and install malware onto the user's system.

    The following are examples of some subject lines currently being used. Please note that this is not inclusive and other similar subjects are likely circulating.

    • You... In My Dreams
    • A Toast My Love
    • Sending You My Love
    • Falling In Love with You
    • Special Romance
    • You're In My Thoughts
    • Sent with Love
    • Our Love Will Last
    • Our Love is Strong
    • Your Love Has Opened
    • You're the One
    • Heavenly Love
    US-CERT also reminds users to beware of future phishing attacks that may target the following types of events:
    • Sporting Events such as the Super Bowl
    • Political Events such as the Presidential Primaries
    • Other Social Events
    • Holidays
    US-CERT urges users and administrators to take the following preventative measures to mitigate the security risks:


    Fraudulent Mac OS Security Tool Circulating

    added January 15, 2008 at 12:33 pm | updated January 15, 2008 at 05:19 pm

    US-CERT is aware of reports of a rogue security scanning tool circulating for Apple Mac OS, known as MacSweeper. The website hosting the tool appears to offer a free scan that when clicked on, highlights purported security issues on a users system. The website then indicates that a subscription fee is necessary in order to fix the alleged issues. Researchers have raised concern over the legitimacy of this tool and point to discrepancies in the language used to describe the software, citing plagiarism from well-known security vendor websites. In addition, some users on the Apple message boards have indicated that they are automatically being directed to the MacSweeper website while browsing online.

    US-CERT reminds users to only install software from trusted sources.